1857 Open source projects that are alternatives of or similar to Security Code Scan

☕️ SonarSource Static Analyzer for Java Code Quality and Security

Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.

[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.

Java bytecode analyzer customizable via JSON rules

Code analyzer for C# and VB.NET projects https://redirect.sonarsource.com/plugins/vbnet.html

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

Chronos - A static race detector for the go language

A static binary vulnerability scanner

Roslyn-based analysis for code using the Serilog logging library. Checks for common mistakes and usage problems.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Static code analysis for Kotlin

⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.

Static analysis framework for .NET programs.

A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

🔥 ZXing的精简版，优化扫码和生成二维码/条形码，内置闪光灯等功能。扫描风格支持：微信的线条样式，支付宝的网格样式。几句代码轻松拥有扫码功能 ，ZXingLite让集成更简单。（扫码识别速度快如微信）

Lint all your JavaScript, CSS, HTML, Markdown and Dockerfiles with a single command

SonarLint integration for Apache Netbeans

OpenStaticAnalyzer is a source code analyzer tool, which can perform deep static analysis of the source code of complex systems.

An open-source cross-platform traceroute/ping analyser.

SQL Server static code analysis rules for SSDT database projects

Code Climate Engine for ESLint

A tiny Node.js microservice to detect the language of a code snippet

A plugin to simplify Static Code Analysis on Gradle. Not restricted to, but specially useful, in Android projects, by making sure all analysis can access the SDK classes.

A GitHub app to automatically review Python code style over Pull Requests

A Simple PE File Heuristics Scanners

A library to read static analysis reports into a Java object model

EBA is a static bug finder for C.

Code Climate Engine for PHP Code Sniffer

nakedret is a Go static analysis tool to find naked returns in functions greater than a specified function length.

织梦全版本漏洞扫描

[reborned barcode_scan] A flutter plugin for reading 2D barcodes and QR codes.

Saraff.Twain.NET is the skillful scanning component which allows you to control work of flatbed scanner, web and digital camera and any other TWAIN device from .NET environment. You can use this library in your programs written in any programming languages compatible with .NET technology.

A linter, formatter for finding and removing unused import statements.

Kubernetes RBAC static Analysis & visualisation tool

Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules

⚙️ Scan your Java, Kotlin, PHP, Python, JavaScript, TypeScript projects at GitHub with Qodana

Code Climate engine for code duplication analysis

A tool to help eliminate NullPointerExceptions (NPEs) in your Java code with low build-time overhead

Take any phone-taken picture and turn it into a document scan.

Web Application Security Scanner Framework

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Code scanner library for Android, based on ZXing

identypo is a Go static analysis tool to find typos in identifiers (functions, function calls, variables, constants, type declarations, packages, labels).

Extra strict and opinionated rules for PHPStan

A barcode and qr code scanner( 二维码/条形码扫描、生成，仿微信、支付宝)

🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

🐘 SonarPHP: PHP static analyzer for SonarQube & SonarLint

A static type analyzer for Python code

It's not just a linter that annoys you!

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

ClangKit provides an Objective-C frontend to LibClang. Source tokenization, diagnostics and fix-its are actually implemented.

Doctrine extensions for PHPStan

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

An extensible multilanguage static code analyzer.

高效强大扫描分析iOS和Android项目里没有使用的类Mac开源工具，清理项目垃圾类，让项目结构干净清爽，升级维护得心应手. Efficient and powerful scanning analysis iOS and Android project no classes used in Mac open source tools, cleaning rubbish class project, make project structure clean and relaxed, upgrade maintenance

The Exakat Engine : smart static analysis for PHP

Droidefense: Advance Android Malware Analysis Framework

瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf